This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft File: lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json) Hash identifier: Uu/PDboX9VwDXi0JzVezYs/LrUZUJCJzjz9jAu7B1so= Subject key identifier: 6A:AD:CC:8F:4F:07:77:05:DE:39:34:B1:95:EB:69:77:DE:F6:98:21 Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 Certificate issuer: /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Certificate serial: 0297 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft Manifest number: 028F Signing time: Tue 23 Dec 2025 00:32:05 +0000 Manifest this update: Tue 23 Dec 2025 00:32:05 +0000 Manifest next update: Tue 30 Dec 2025 00:32:05 +0000 Files and hashes: 1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: bGgDxg5a6Mn65k3I+l2OCIpwp/Y+94+FsMJifs2giCQ=) 2: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: sR0eTjFYTlKs7mzVHMIl7telIMsp7nYju6MlYaiMBkg=) 3: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: 64gg/L8X7dQV3AAOAv3MN1klInujbmxMEcZ9X63m+I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:32:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 663 (0x297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA1BE, serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Validity Not Before: Dec 23 00:32:05 2025 GMT Not After : Dec 30 00:32:05 2025 GMT Subject: CN=6949e305-fdce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7b:ce:b3:33:a1:22:41:5e:53:36:f4:bd:5d: 04:c0:ad:72:76:aa:92:ed:72:f3:43:b2:92:02:70: 7c:f2:e7:dd:36:b0:2e:25:8a:ff:c5:0e:15:cd:5a: 6c:8d:27:fe:d3:ce:4b:9d:b1:47:e8:eb:fc:d7:dd: 67:bc:f6:09:2a:0a:30:5a:71:cb:f7:a0:c4:83:0b: b3:be:7c:6b:30:53:75:11:f8:3f:9e:f6:a9:d1:a5: 98:b8:29:c9:95:66:23:dc:16:eb:ca:07:4e:ee:d2: 77:8a:c5:6a:0e:06:e1:f5:02:06:c3:a1:3f:c0:b2: 91:9f:ac:39:f8:b2:f6:ae:81:b5:ed:e8:da:2f:bc: 1b:48:b1:41:0f:90:74:39:5f:68:b6:bd:dd:80:28: 6f:e1:e2:10:07:00:1f:94:8c:d5:a7:b6:b5:70:f9: 05:49:8b:1d:77:54:fe:46:20:ce:45:d3:af:5e:ee: 2a:39:e7:9a:e2:c9:f0:94:ae:3d:75:f4:ae:2a:66: db:d8:6d:71:6e:8b:38:30:71:48:9e:65:f1:22:ef: 85:ae:7c:26:e3:b0:89:b1:67:0c:7e:82:3c:a0:a0: b5:04:f5:8f:d7:fa:9f:99:bc:41:1e:8d:8c:23:57: c5:83:d3:13:33:07:db:dd:78:7c:3f:9f:d8:04:6d: 98:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AD:CC:8F:4F:07:77:05:DE:39:34:B1:95:EB:69:77:DE:F6:98:21 X509v3 Authority Key Identifier: keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c8:73:47:ec:2f:e7:0c:95:12:65:6f:57:22:e4:fc:f7:4e: 10:85:ec:2e:d2:41:d0:a5:ae:b5:23:02:7b:ac:a2:5f:9b:39: ba:29:ec:02:85:9a:d9:d7:dc:a0:d3:e8:49:cb:b1:41:2c:ca: b6:04:b3:67:8e:f6:08:58:c4:9c:18:cc:83:45:9e:83:d0:ed: 66:30:e1:6f:28:cf:a0:84:0d:5b:d4:87:0a:a6:0b:cf:eb:bc: 27:7a:c0:18:09:d8:9b:56:f3:1e:ac:02:b8:31:f0:d6:d2:72: 13:5c:97:17:c0:ef:4e:23:60:11:53:32:82:7a:2a:78:3e:51: e2:43:2f:82:c9:2f:4d:2c:ec:68:49:2e:90:f0:ff:74:73:8f: e6:f8:88:30:27:9c:28:19:3b:27:04:4f:62:f6:a1:2a:b6:98: ca:7a:53:36:25:65:e0:38:e9:48:f3:8b:91:09:28:84:c8:da: e3:12:6f:04:76:81:9d:f2:79:7d:5f:61:f2:9b:6f:43:e4:05: 90:bd:09:fd:5e:4d:ca:04:4b:c2:d1:8d:e6:e1:6f:14:fe:35: de:bf:f1:47:05:14:43:5e:25:c1:c3:54:0b:05:0a:10:f6:65: 8b:01:4b:6c:4b:72:ff:f4:2b:d7:1c:2d:f7:e3:ee:4d:8c:cd: 62:6e:8e:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkExQkUxMTAvBgNVBAUTKDk1MjZBNjcyNDc4QUZBNzU0NDVEOEQwN0RDQzU3QzA1 ODk2NkVGRTIwHhcNMjUxMjIzMDAzMjA1WhcNMjUxMjMwMDAzMjA1WjAYMRYwFAYD VQQDDA02OTQ5ZTMwNS1mZGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nvOszOhIkFeUzb0vV0EwK1ydqqS7XLzQ7KSAnB88ufdNrAuJYr/xQ4VzVps jSf+085LnbFH6Ov8191nvPYJKgowWnHL96DEgwuzvnxrMFN1Efg/nvap0aWYuCnJ lWYj3BbrygdO7tJ3isVqDgbh9QIGw6E/wLKRn6w5+LL2roG17ejaL7wbSLFBD5B0 OV9otr3dgChv4eIQBwAflIzVp7a1cPkFSYsdd1T+RiDORdOvXu4qOeea4snwlK49 dfSuKmbb2G1xbos4MHFInmXxIu+Frnwm47CJsWcMfoI8oKC1BPWP1/qfmbxBHo2M I1fFg9MTMwfb3Xh8P5/YBG2Y3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqtzI9P B3cF3jk0sZXraXfe9pghMB8GA1UdIwQYMBaAFJUmpnJHivp1RF2NB9zFfAWJZu/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTFCRS80MTY4RkY3NjJE MzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1uVkVYWTBIM01WOEJZbG03 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTYW1ja2VLLW5WRVhZMEgzTVY4QllsbTctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTFCRS80MTY4RkY3NjJEMzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1u VkVYWTBIM01WOEJZbG03LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0yHNH7C/nDJUSZW9XIuT8904Qhewu0kHQpa61IwJ7rKJfmzm6KewC hZrZ19yg0+hJy7FBLMq2BLNnjvYIWMScGMyDRZ6D0O1mMOFvKM+ghA1b1IcKpgvP 67wnesAYCdibVvMerAK4MfDW0nITXJcXwO9OI2ARUzKCeip4PlHiQy+CyS9NLOxo SS6Q8P90c4/m+IgwJ5woGTsnBE9i9qEqtpjKelM2JWXgOOlI84uRCSiEyNrjEm8E doGd8nl9X2Hym29D5AWQvQn9Xk3KBEvC0Y3m4W8U/jXev/FHBRRDXiXBw1QLBQoQ 9mWLAUtsS3L/9CvXHC334+5NjM1ibo4J -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:30 2025 by rpki-client